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DETAILED ACTION 

1 . This office action is in response to Applicants' application serial no. 09/422,537 filed on 
10/21/1999. 

Specification 

2. The disclosure is objected to because it contains an embedded hyperlink and/or other 
form of browser-executable code. Applicant is required to delete the embedded hyperlink and/or 
other form of browser-executable code. See MPEP § 608.01. 

Claim Rejections - 35 USC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 

obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or 
described as set forth in section 102 of this title, if the differences between the subject 
matter sought to be patented and the prior art are such that the subject matter as a whole 
would have been obvious at the time the invention was made to a person having ordinary 
skill in the art to which said subject matter pertains. Patentability shall not be negatived 
by the manner in which the invention was made. 

4. Claims 1-17, 19, 21, 23, 25-44, 46, 48, 50,-71, 73, 75, 77, 79-81 are rejected under 35 
U.S.C. 103(a) as being unpatentable over Hind et al. (U.S. Patent No. 6,585,778 hereinafter 
Hind) in view of Gennaro et al. (U.S. Patent No. 5,937,066 hereinafter Gennaro) and Schneck et 
al. (U.S. Patent No. 5,933,498 hereinafter Schneck) and Carter (U.S. Patent No. 5,787,175). 

In respect to claim 1, Hind discloses a computer program product embodied on computer 
readable media readable by a computing system in a computing environment, for enforcing 
security policy using style sheet processing, comprising: 

an input document (see Hind, col. 4, lines 16-18); 
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one or more stored policy enforcement objects, wherein each of said stored poUcy 
enforcement objects specifies a security poHcy to be associated with zero or more elements of 
said input document (see Hind, col. 4, lines 1-4 and lines 1 1-32); 

a Document Type Definition (DTD) corresponding to said input document, wherein said 
DTD has been augmented with one or more references to selected ones of said stored policy 
enforcement objects (see Hind, col. 4, Hnes 16-23); 

an augmented style sheet processor, wherein said augmented processor further comprises: 

computer-readable program code means for loading said DTD (see Hind, col. 4, lines 25); 

computer-readable program code means for resolving each of said one or more references 
in said loaded DTD (see Hind, coL 4, lines 25-26); 

computer-readable program code means for instantiating said policy enforcement 

objects associated with said resolved references (see Hind, col. 4, lines 26-28); 

computer-readable program code means for executing selected ones of said instantiated 
policy enforcement objects during application of one or more style sheets to said input 
document, wherein a result of said computer-readable program code means for executing is an 
interim transient document reflecting said execution (see Hind, col. 4, lines 28-31); 

Computer-readable program code means for receiving said requested output document at 
said cUent device (see col. Hind, col. 3, lines 60-63); and 

Hind does not disclose but Gennaro discloses a computer-readable program code means 
for generating one or more random encryption keys; and computer-readable program code means 
for encrypting each of said one or more random encryption keys (see col. 7, lines 52-67 and col. 
8, lines 44-54). It would have been obvious to one of ordinary skill in the art at the time the 
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invention was made to combine the Hind's teaching of enforcing data pohcy using style sheet 
processing with security feature of using random encryption keys and encrypting the encryption 
key taught by Gennaro for better protecting transmitted document by avoiding the disadvantage 
of key sharing and to keep the encryption key safe by encrypting the encryption key (see 
Gennaro, col. 8, Unes 44-45). 

Furthermore, Hind does not disclose but Schneck discloses a computer-readable program 
code means for encrypting selected elements of said interim transient document, wherein a 
particular one of said generated random encryption keys may be used to encrypt one or more of 
said selected elements, while leaving zero or more other elements of said interim transient 
document unencrypted (see Fig. 1 and 2, col. 9, lines 38-59 and col. 10, lines 34-42). It would 
have been obvious to one of ordinary skill in the art at the time the invention was made to 
combine Hind's teaching of enforcing data policy using style sheet processing with the partial 
encryption features taught by Schneck in order to enable the user to access the data in various 
controlled ways depending on access rules (see Schneck, col. 9, lines 55-59). 

Hind does not disclose but Schneck discloses creating an encrypted output document 
comprising said zero or more unencrypted elements, said selected encrypted elements, and said 
encrypted encryption keys (see Fig. 2, 4 and 6, col. 12, lines 17-26 and col. 13, lines 36-50). 
Therefore, It would have been obvious to one of ordinary skill in the art at the time the invention 
was made to combine Hind's teaching of enforcing data policy using style sheet processing with 
packaged data that includes encrypted body part, unencrypted body and other encrypted 
information taught by Schneck for better tamper resistant of transmitted document. 



Application/Control Number: 09/422,537 Page 5 

Art Unit: 2134 

Hind discloses a computer-readable program code means for requesting from a user or 
process on a client device (see Hind, col. 3, lines 60-63), but does not disclose but Carter 
discloses said encrypted output documents, wherein said user or process is a member of a 
particular group authorized to view at least one of said selected encrypted elements (see Carter, 
col. 1, lines 5-14 and col. 6, lines 5-15); 

an augmented document processor comprising: 

computer-readable program code means for decryption of selected ones of said encrypted 
encryption keys (see Carter, col. 24, lines 26-30); and 

computer-readable program code means for decrypting said requested output document 
using said decrypted selected ones of said encrypted encryption keys, thereby creating a result 
document (see Carter, col. 24, lines 25-31). 

Therefore, it would have been obvious to one of ordinary skill in the art at the time the 
invention was made to incorporate the teaching of Hind's enforcing data policy using stylesheet 
processing with the Carter's teaching by associating selected encrypted element with authorized 
user of a particular group to view and decrypting requested document using decrypted selected 
one of said encrypted encryption key for controlling collaborative access to a work group 
document and to prevent redistribution of new keys when a member of a group leave the group 
(see Carter, col. 5, lines 5-20, col. 6, lines 5-7). 

Carter further discloses allowing a trusted personnel acts as an active filter to filter out 
unauthorized attempts by receiving a user's request to access information, comparing the request 
with the user's access rights or capabilities and grants or denies the request according but does 
not explicitly discloses contacting said trusted personnel to provide decryption of encrypted key. 
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However, it would have been obvious to one of ordinary skill in the art at the time the invention 
was made allov^ng human participation in response to user's request in decrypting encrypted 
key in order to provide uninterrupted service during power outage or network disruption. 

Jn respect to claim 2, Hind, Germaro, Schneck and Carter disclose the computer program 
product according to Claim 1, Hinder further comprising computer readable program code means 
for rendering said result document on said client device (see Hind, col. 7, lines 19-25). 

In respect to claim 3, Hind, Germaro, Schneck and Carter disclose the computer program 
product according to Claim 1 , wherein said interim transient document comprises one or more 
encryption tags identifying elements needing encryption (see Schneck, col. 7, lines 37-39) . 

In respect to claim 4, Hind, Germaro, Schneck and Carter disclose the computer program 
product according to Claim 1, wherein said input document is specified in an Extensible Markup 
Language (XML) notation (see Hind, col. 7, lines 19-50). 

In respect to claim 5, Hind, Gennaro, Schneck and Carter disclose the computer program 
product according to Claim 4, wherein said result document is specified in said XML notation 
(see Hind, col. 7, lines 19-50). 

In respect to claim 6, Hind, Gennaro, Schneck and Carter disclose the computer program 
product according to Claim 1, wherein said stored policy enforcement objects further comprise 
computer-readable program code means for overriding a method for evaluating said elements of 
said input document, and wherein said computer-readable program code means for executing 
further comprises computer-readable program code means for executing said computer-readable 
program code means for overriding (see Hind, col. 4, lines 38-42). 
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In respect to claim 7, Hind, Gennaro, Schneck and Carter disclose the computer program 
product according to Claim 6, wherein said style sheets are specified in an Extensible Stylesheet 
Language (XSL) notation (see Hind, col. 4, lines 43-44). 

In respect to claim 8, Hind, Gennaro, Schneck and Carter disclose the computer program 
product according to Claim 7, wherein said method is a value-of method of said XSL notation, 
and wherein said computer-readable program code means for overriding said value-of method is 
by subclassing said value-of method (see Hind, col. 4, lines 43-49). 

In respect to claim 9, Hind, Gennaro, Schneck and Carter disclose the computer program 
product according to Claim 6 or Claim 8, wherein said overridden method comprises: 
computer-readable program code means for generating encryption tags (see Schneck, col. 12, 
lines 27-50); and computer-readable program code means for inserting said generated encryption 
tags into said interim transient document to surround elements of said interim transient document 
which are determined to require encryption; and said computer-readable program code means for 
encrypting selected elements encrypts those elements surrounded by said inserted encryption 
tags (see Schneck, Fig. 2 and 6, col. 7, lines 35-39, col. 13, lines 37-50). 

In respect to claim 10, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 2, wherein each of said instantiated poUcy enforcement 
objects further comprises: 

a specification of a community that is authorized to view said elements associated with 
said security policy, said specification of said communities further comprising specification of at 
least one of: (1) one or more individual users or processes which are community members, and 
(2) one or more groups which are community members, wherein each of said group comprises 
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one or more individual users or processes (see Carter col. 1, lines 5-14 and col. 3, lines 25-41); 
and 

and an encryption requirement for said elements associated with said security policy (see 
Schneck, col. 23, line 56-col. 24, line 4). 

In respect to claim 11, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 10, wherein said encryption requirement further comprises 
specification of an encryption algorithm (see Schneck, col. 12, lines 17-26). 

In respect to claim 12, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 10, wherein said encryption requirement further comprises 
specification of an encryption algorithm strength value (see Schneck, col. 12, lines 27-41). 

In respect to claim 13, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to claim 10, wherein a computer-readable program code means for 
encrypting a different version of each of said encryption keys for each of said one or more 
members of each of zero or more of said communities which uses said encryption key, and 
wherein each of said different versions is encrypted using a public key of said community 
member for which said different version was encrypted members (see Carter, col. 1, lines 5-14 
and col. 8, lines 51-60 and col. 13, lines 63-67). 

In respect to claim 14, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 10, wherein said encryption requirement may have a null 
value to indicate that said specified security policy does not require encryption (see Schneck, 
Fig. 2, col. 7, lines 35-40). 
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In respect to claim 15, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 1, wherein said computer-readable program code means for 
encrypting selected elements uses a cipher block chaining mode encryption process (see 
Gennaro, col. 1, lines 19-25). 

In respect to claim 16, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 13 further disclose said computer program product 
comprising: 

computer-readable program code means for creating a key class comprises: 
a strongest encryption requirement of associated encrypted element (see Schneck, col. 12, 
lines 27-65); 

generating said one or more random encryption keys generates a particular one of said random 
encryption keys for each of said key classes (see Gennaro, col. 8, lines 55-67); 



each of said different versions in a particular key class is encrypted from said generated 
encryption key generated for said key class (see Gennaro, col. 8, Hnes 55-67); and 

encrypting selected elements uses that one of said particular random encryption keys 
which was generated for said key class with which said selected element is associated (see col. 
Schneck, col. 7, lines 35-45). 

for each unique community, wherein said key class is associated with each of said 
encrypted elements for which this unique community is an authorized viewer (see Carter, col. 1, 
lines 1-14); 



and 
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an identifier of each of said members of said unique community (see Carter, col. 8, lines 

51-60); 

and one of said different versions of said encrypted encryption key for each of said 
identified community members (see Carter, col. 1, lines 5-14 and col. 8, lines 51-60). 

In respect to claim 17, Hind, Gennaro, Schneck and Carter disclose the computer 
program product according to Claim 13, wherein: 

said computer-readable program code means for decrypting said requested output 
document further comprises: 

computer-readable program code means for expanding said one or more groups of said 
communities to determine said individual users or processes in each of said expanded groups 
(see Carter, col. 6, lines 5-15); 

computer-readable program code means for determining one or more of said 
expanded communities of which said requesting user or process is one of said expanded group 
members (see Carter, col. 1, 60-67); 

computer-readable program code means for decrypting, for each of said 

determined communities, said different Version of said random encryption key which 
was encrypted using said public key of said one member, wherein said one member is said 
expanded group of which said requesting user or process is one of said expanded group 
members, thereby creating a decrypted key for each of said determined communities (see Carter, 
col. 6, lines 26-34); and 

computer-readable program code means for decrypting selected ones of said encrypted 
elements in said requested output document using said decrypted keys, wherein said selected 
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ones of said encrypted elements are those which were encrypted for one of said determined 

communities (see col. 13, lines 63-col. 4, lines 5); and 

said computer-readable program code means for rendering further comprises: 
computer-readable program code means for rendering said decrypted selected ones and 

said other unencrypted elements (see Schneck, col. 18, lines 44-61). 

In respect to claim 19, Hind, Gennaro, Schneck and Carter disclose the computer program 

product according to Claim 13, wherein: 

said computer-readable program code means for decrypting said requested output 

document further comprises: 

computer-readable program code means for expanding said one or more groups of said 

communities to determine said individual users or processes in each of said expanded groups 

(see Carter, col. 6, lines 5-15); 

computer-readable program code means for determining one or more of said 
expanded communities of which said requesting user or process is one of said expanded 

group members (see Carter, col. 1, lines 60-67); and 

computer-readable program code means for decrypting selected ones of said 

encrypted elements in said requested output document, wherein said selected ones of said 

encrypted elements are those which were encrypted for one of said determined communities (see 

Carter, col. 6, lines 26-34); and 

said computer-readable program code means for rendering further comprises: 
computer-readable program code means for rendering said returned decrypted 
elements and said other unencrypted elements (see Schneck, col. 18, lines 44-61). 
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In respect to claim 21, Hind, Gennaro, Schneck, and Carter disclose the computer 
program product according to Claim 16, wherein: 

said computer-readable program code means for contacting said group clerk further 
comprises: 

computer-readable program code means for locating said group clerk; and 

computer-readable program code means for establishing a mutually-authenticated secure 
session between said client device and said group clerk (see Carter, col.2, lines 32-44); 

said computer-readable program code means for decrypting said requested output 
document further comprises: 

computer-readable program code means for expanding said one or more groups of said 
communities to determine said individual users or processes in each of said expanded groups 
(see Carter, col 6, lines 5-15); 

computer-readable program code means for determining one or more of said key 
classes which identify said requesting user or process as one of said expanded group members 
(see col. 1, lines 5-14 and col. 24, lines 12-31); 

computer-readable program code means for decrypting, for each of said 
determined key classes, said different version of said random encryption key in said key class 
which was encrypted using said public key of said one member, wherein said computer-readable 
program code means for decrypting uses a private key of said one member which is associated 
with said public key which was used for encryption, thereby creating a decrypted key (see col. 6, 
lines 25-34 and col. 13, lines 63-67); and 

computer-readable program code means for decrypting selected ones of said 
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encrypted elements in said requested output document using said decrypted keys, wherein said 
selected ones of said encrypted elements are those which were encrypted for said key class (see 
col. 6, lines 26-34); and 

said computer-readable program code means for rendering further comprises: 

computer-readable program code means for rendering said decrypted selected ones and 
said other unencrypted elements (see Schneck, col. 18, lines 44-61). 

In respect to claim 23, Hind, Gennaro, Schneck, Gupta and Carter disclose the computer 
program product according to Claim 17, wherein 

said computer-readable program code means for rendering further comprises computer- 
readable program code means for rendering a substitute text message for any of said selected 
encrypted elements in said requested output document which cannot be decrypted by said 
computer readable program code means for decrypting said requested output document (see 
Hind, col. 3, lines 60-65). 

In respect to claim 25, Hind, Gennaro, Schneck and Gupta disclose the computer program 
product according to Claim 1, wherein said DTD is replaced by a schema (see col. 8, lines 8-20, 
"an XML schema specifies constraints on the structures and types of elements in an xml 
document. The basic schema for xml is DTD"). 

In respect to claim 26, Hind, Gennaro, Schneck and Gupta disclose the computer program 
product according to Claim 10, wherein said encryption requirement further comprises 
specification of an encryption key length (see Gennaro, col. 30, lines 41-51, maximum key 
length). 
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In respect to claim 21, Hind, Gennaro, Schneck and Gupta disclose the computer program 
product according to Claim 9, wherein said inserted encryption tags may surround either values 
of said elements or values and tags of said elements (see Schneck, Fig. 2 and 6, col. 13, lines 37- 



In respect to claims 28-44, 46, 48, 50 and 52-54, the claim limitations are system claims 
which are substantially similar to the computer program product claims 1-17, 19, 21, 23 and 25- 
27 and therefore the same rejection appKed. 

In respect to claims 55-72, 73, 75, 77 and 79-81, the claim limitation are method claims 
which are substantially similar to the computer program product of claims 1-17, 19, 21, 23 and 
25-27 and therefore the same rejection appUed. 



Claims 18, 20, 22, 24, 45, 47, 49, 51, 72, 74, 76 and 78 are objected to as being 
dependent upon a rejected base claim, but would be allowable if rewritten in independent form 
including all of the limitations of the base claim and any intervening claims. 

The following is a statement of reasons for the indication of allowable subject matter: 

In respect to claim 18, the cited prior arts do not disclose the computer program product 
according to Claim 17, wherein: 

said computer-readable program code means for contacting said group clerk further 
comprises: 

computer-readable program code means for locating said group clerk; and 
computer-readable program code means for establishing a session between said 
client device and said group clerk; 



50). 



Allowable Subject Matter 
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said computer-readable program code means for decrypting said different version for 
each of said determined communities further comprises: 

computer-readable program code means for digitally signing said different version by 
said requesting user or process, thereby creating a first digital signature; 

computer-readable program code means for sending said first digital signature and said 
different version to said group clerk on said session; 

computer-readable program code means for receiving said sent first digital signature and 
said different version by said group clerk; 

computer-readable program code means for verifying said first digital signature by said 
group clerk; 

computer-readable program code means for verifying, by said group clerk, that 
said requesting user or process is one of said authorized members of said determined community 
associated with said different version; 

computer-readable program code means for decrypting said different version using a 
private key of said one member which is associated with said public key which was used for 
encryption; 

computer-readable program code means for re-encrypting said decrypted different 
version using a public key of said requesting user or process, thereby creating a re-encrypted 
key; 

computer-readable program code means for digitally signing said re-encrypted key by 
said group clerk, thereby creating a second digital signature; 
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computer-readable program code means for returning said second digital signature and 
said re-encrypted key from said group clerk to said client device on said session; 

computer-readable program code means for receiving said second digital signature and 
said re-encrypted key at said client device; 

computer-readable program code means for verifying said second digital signature at said 
client device; and 

computer-readable program code means, operable on said client device, for 
decrypting said received re-encrypted key using a private key of said requesting user or process, 
creating said decrypted key; and 

said computer-readable program code means for decrypting selected ones of said 
encrypted elements in said requested output document is executed at said client device using said 
decrypted key. 

In respect to claim 20, the cited prior arts do not disclose the computer program product 
according to Claim 19, wherein: 

said computer-readable program code means for contacting said group clerk further 
comprises: 

computer-readable program code means for locating said group clerk; and computer- 
readable program code means for establishing a mutually-authenticated secure session between 
said client device and said group clerk; and 

said computer-readable program code means for decrypting selected ones of said 
encrypted elements in said requested output document further comprises: 
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computer-readable program code means for locating said different version of said 
random encryption key which was encrypted using said public key of said one member, wherein 
said one member is said expanded group of which said requesting user or process is one of said 
expanded group members; 

computer-readable program code means for sending said located different version to said 
group clerk, along with an element encrypted with said different version, on said secure session; 

computer-readable program code means for receiving said sent different version 
and said element by said group clerk; 

computer-readable program code means for verifying, by said group clerk, that 
said requesting user or process is one of said authorized members of said determined community 
associated with said different version; 

computer-readable program code means for decrypting said different version using a 
private key of said one member which is associated with said public key which was used for 
encryption; 

computer-readable program code means for decrypting said element using said 
decrypted different version; 

computer-readable program code means for returning said decrypted element from said 
group clerk to said client device on said secure session. 

hi respect to claim 22, the cited prior arts do not disclose the computer program product 
according to Claim 17, wherein: 

said computer-readable program code means for contacting said group clerk further 
comprises: 
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computer-readable program code means for locating said group clerk; and 

computer-readable program code means for establishing a mutually-authenticated secure 
session between said client device and said group clerk; 

said computer-readable program code means for decrypting said different version for 
each of said determined communities further comprises 

computer-readable program code means for sending said different version to said group 
clerk on said secure session; 

computer-readable program code means for receiving said sent different version by said 
group clerk; 

computer-readable program code means for verifying, by said group clerk, that 
said requesting user or process is one of said authorized members of said determined community 
associated with said different version; 

computer-readable program code means for decrypting said different version using a 
private key of said one member which is associated with said public key which was used for 
encryption; 

computer-readable program code means for returning said decrypted different 
version from said group clerk to said chent device on said secure session; and 

computer-readable program code means for receiving said decrypted different 
version at said client device; and said computer-readable program code means for decrypting 
selected ones of said encrypted elements in said requested output document is executed at said 
client device using said received decrypted different version. 
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In respect to claim 24, the cited prior art do not disclose the computer program product 
according to Claim 19, wherein: 

said computer-readable program code means for contacting said group clerk further 
comprises: 

computer-readable program code means for locating said group clerk; and 
computer-readable program code means for establishing a session between said 
client device and said group clerk; and 

said computer-readable program code means for decrypting selected ones of said 
encrypted elements in said requested output document further comprises: 

computer-readable program code means for locating said different version of said random 
encryption key which was encrypted using said pubHc key of said one member, wherein 

said one member is said expanded group of which said requesting user or process is one 
of said expanded group members; 

computer-readable program code means for digitally signing, by said requesting 
user or process, said located version and. an element encrypted with said different version, 
thereby creating a first digital signature; 

computer-readable program code means for sending said first digital signature, said 
located different version, and said element to said group clerk on said session; computer-readable 
program code means for receiving said sent first digital signature, said different version, and said 
element by said group clerk; 

computer-readable program code means for verifying said first digital signature by said 
group clerk; 
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computer-readable program code means for verifying, by said group clerk, that said 
requesting user or process is one of said authorized members of said determined community 
associated with said different version; computer-readable program code means for decrypting 
said different version using a private key of said one member which is associated with said 
public key which was used for encryption; 

computer-readable program code means for decrypting said element using said 
decrypted different version; 

computer-readable program code means for re-encrypting said decrypted element using a 
public key of said requesting user or process, thereby creating a re-encrypted element; 

computer-readable program code means for digitally signing said re-encrypted element 
by said group clerk, thereby creating a second digital signature; 

computer-readable program code means for returning said second digital signature and 
said re-encrypted element from said group clerk to said client device on said session; 

computer-readable program code means for receiving said second digital signature and 
said re-encrypted element at said client device; and 

computer-readable program code means for verifying said second digital signature by 
said requesting user or process. 

Claims 45, 47, 49 and 15 are system claims which are substantially similar to the 
computer program product claims 18, 20, 22 and 24 therefore the same reason of indication for 
allowable subject matter applied. 
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Claims 72, 74, 76 and 78 are method claims which are substantially similar to the 
computer program product claims 18, 20, 22 and 24 therefore the same reason of indication for 
allowable subject matter applied. 

Conclusion 

5. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

-Hind et al. Disclose a retrieval of style sheets from directories based upon partial 
characteristic matching. 

-Ciacelli et al. Disclose an apparatus, method and computer program product for 
protecting copyright data within a computer system. 

-Kuroda discloses a security level control apparatus and method for a network securing 
communications between parties without presetting the security level 

-Moshfeghi discloses a method and apparatus for controlling browser functionality in the 
context of an application. 

-Chen et al. Disclose a dynamic business process automation system using XML 
documents. 

-Pebley et al. Disclose a system and method for transferring encrypted sections of 
documents across a computer network. 

-Kramer et al. Discloses a hierarchical model of consumer attributes for targeting content 
in a privacy-reserving manner. 

-Hyman et al. Disclose extension of parsable structures. 
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-Bailey et al. Disclose method for versioning a UML model in a repository in accordance 
with an updated XML representation of the UML model. 

-Roberts et al. Discloses a method for creating network services by transforming an XML 
runtime model in response to an iterative input process. 

-Livingston et al. disclose a system for presenting and managing enterprise architectures. 

-DanieU discloses a security services and pohcy enforcement for electronic data. 

Gutowitz discloses a method and apparatus for encryption decryption and authentication 
using dynamical systems. 

-Kluttz et al. Disclose a methods, systems and computer program products for multi-level 
encryption. 

Rucklidge et al. disclose a methods and apparatus for partial encryption of tokenized 
documents. 

-Boag et al. Disclose a dynamically determining the most appropriate location for style 
sheet application. 

6. Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tongoc Tran whose telephone number is (703) 305-7690. The 
examiner can normally be reached on 8:30-5:00 M-F. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Gregory A. Morse can be reached on (703) 308-4789. The fax phone number for the 
organization where this application or proceeding is assigned is (703) 746-7240. 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (703)305-9600. 
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